Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lriX1k2fPd9oWb9iOsUWGl8ZIUw.cer
File: lriX1k2fPd9oWb9iOsUWGl8ZIUw.cer (raw, json)
Hash identifier: R45ZD5yB3MgaAoRqZoaFsFR7c7KHX0HVt2jho9sYnjU=
Subject key identifier: 96:B8:97:D6:4D:9F:3D:DF:68:59:BF:62:3A:C5:16:1A:5F:19:21:4C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856FAF757A147D977E78EA70072E6D243D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/lriX1k2fPd9oWb9iOsUWGl8ZIUw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 23:34:07 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 176.97.217.0/24
Validation: Failed, certificate revoked on Fri 10 Nov 2023 13:35:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:af:75:7a:14:7d:97:7e:78:ea:70:07:2e:6d:24:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:34:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96b897d64d9f3ddf6859bf623ac5161a5f19214c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3b:99:ec:3d:df:af:b5:4d:cb:fd:72:ca:18:
df:58:eb:5e:2e:79:5a:13:f3:1d:ca:86:fc:d1:c4:
23:f4:4d:99:85:a2:09:ea:45:f3:e8:7a:7e:75:6b:
f0:ee:0c:ab:4a:2d:13:ab:35:12:18:87:14:45:5d:
58:49:a9:44:4c:ea:11:91:61:f9:92:cd:93:35:32:
29:9e:ab:83:9a:a4:31:2f:02:a6:c5:a9:dd:47:6e:
b7:91:3d:58:08:22:a8:54:08:9b:8d:41:f4:59:96:
f4:18:94:59:ee:64:47:bd:ee:06:9e:a7:5d:df:4a:
2c:76:38:22:53:9e:50:22:59:3a:59:77:0d:39:eb:
b4:4b:c2:ca:57:0c:0f:cf:a8:9e:b3:a4:2d:66:a9:
6d:33:ca:d9:4b:ea:36:4b:42:04:81:4a:62:c1:b4:
78:f2:a7:9b:40:6b:1f:f9:a3:98:c4:a6:95:de:72:
31:1b:2c:2c:f9:1b:38:7d:21:98:f3:e6:b5:27:14:
67:9f:48:3f:c7:ee:82:5f:06:d4:5d:cc:ba:1f:d3:
f8:72:e0:08:e1:76:50:c5:ab:0c:83:96:6d:ff:4b:
95:66:ba:55:f2:03:ab:dd:e1:22:b6:42:da:2c:5a:
fc:b2:10:7f:9b:a2:1a:fe:0f:f1:c6:53:0b:cd:72:
18:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B8:97:D6:4D:9F:3D:DF:68:59:BF:62:3A:C5:16:1A:5F:19:21:4C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/59a733-7dc5-4111-9e62-753663d28c82/1/lriX1k2fPd9oWb9iOsUWGl8ZIUw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.217.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:2a:1b:f4:ae:83:49:d6:1c:1f:2a:11:ba:c4:96:2e:f0:26:
54:fd:4c:11:d5:b9:4d:33:7f:fb:8d:75:35:2c:b0:84:3c:ef:
a5:5d:e5:99:92:6e:cb:73:09:63:ca:37:85:95:dc:30:92:ff:
c2:df:df:fb:1f:dd:c8:70:e7:d4:11:46:b7:e7:d2:b5:6c:fa:
6a:35:f2:ad:f4:9a:80:29:9f:da:93:86:e7:ce:08:c4:fa:cf:
30:24:f6:40:f3:86:0b:44:1f:0b:bc:79:51:41:b1:24:d3:ae:
29:6d:d2:cb:62:e0:8e:97:fb:0f:8f:de:cc:03:37:bd:a7:92:
48:bd:4b:d2:0d:52:b6:c2:f4:18:e8:32:7c:4c:7e:77:fa:63:
dd:ba:41:e5:44:04:2f:fa:3b:37:7d:2e:3a:97:9f:8c:d1:e4:
be:c1:63:ca:e3:70:ab:c9:73:22:70:6b:f1:6b:75:8d:58:1e:
53:e7:69:59:f4:7c:4d:c4:87:d6:0f:d8:31:6f:59:3d:b2:fb:
69:8e:7a:bd:0d:be:8e:6e:9e:08:3c:d0:81:7d:ef:c4:30:50:
e2:94:4f:04:fd:0e:2f:a6:20:6b:aa:02:32:14:e6:3f:5f:05:
a1:4d:9f:69:6e:30:6b:af:62:d8:de:bc:c4:80:c5:03:31:49:
39:a1:23:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:56:11 2024 by rpki-client on console-ams.rpki-client.org